joachimmetz
commented
3 months ago @hur thanks for taking this on
- let us know if you need assistance getting started
- please add test data that can be shared under the license of this project (please not other people's copyrighted material)
Add a parser for logs created by TeamViewer, a RMM tool that is sometimes used by Threat Actors for lateral movement / C2.
In particular, the it would be good to support the following log files of interest:
Connections_incoming.txt- logs incoming TeamViewer connectionsConnections.txt- logs outgoing TeamViewer connectionsTeamViewerXX_Logfile.log- General log file containing many types of forensically interesting log entriesPlease assign to me.